IPS detection [SID: 30429] Audit: SMB Bruteforce Attempt is generating a large number of notifications. The default configuration for this audit signature is Allow and not log.  While the action is being allowed it is being logged.

[SID: 30429] Audit: SMB Bruteforce Attempt attack detected but not blocked.

This issue was fixed in (CIDS) Intrusion Prevention Engine 17.1.0.222 and newer. This was fully released through content updates as of May 21st, 2019.